EWEBSITE()
.home()
.posts()
.github()
hacking
hackthebox
javascript
machines
nginx
privesc
sqli
web
websockets
cache
challenges
varnish
bruteforce
bypass
haproxy
rate_limiting
inheritance
nodejs
prototype_pollution
ssrf
xss
apache
http_smuggling
CVE-2022-44268
imagemagick
dns
dns_rebinding
android
mobile
sslpininng_bypass
2022
ccsc
crypto
ctfs
forensics
misc
pwn
reverse
2024
n00bz
path_traversal
programming
write_primitive
zip_slipping
js2py
jwt
serviceworkers
wizerctf-1
2023
class_pollution
flask
python
magic
weird
angr
assembly
rc4
wireshark
N00bz CTF 2024 writeups
Date: 05/08/2024
Above we can see a small program that asks the user to calculate answers of adding two random numbers. The user is asked to choose the number of questions he wants to answer and is awarded with the respective number of characters of the flag. However since there is an exponential delay due to pow(2,i), the classical approach of an automated solver would take too long. The smart thing to do here is to use the negative indexing feature of...
2024
ctfs
hacking
misc
n00bz
path_traversal
programming
pwn
write_primitive
zip_slipping
Reading Time: 9 minutes
Wizer CTF 2024 All Challenges
Date: 08/02/2024
Last week I was able to participate at a wonderful CTF organized over at Wizer. This CTF consisted of 6 web challenges in varying difficulty where participants were challenged to a Blitz speed-hacking competition of who can solve the most in 6 hours very generous prizes for the top 3....
2024
bypass
ctfs
dns
dns_rebinding
hacking
js2py
jwt
nginx
path_traversal
serviceworkers
ssrf
web
wizerctf-1
Reading Time: 22 minutes